April 27, 2010 at 7:10 am
Thank Eric for the compliments.. And Thanks Steve for clearing Erics doubt.
-Roy
May 18, 2010 at 12:30 pm
Hello Roy,
I successfully implemented TDE on SQL Server 2008 without SP1 before.
Now I am testing the TDE on SQL Server 2008 with SP1 (version 10.0.2531.0) but it is not working any more (encryption_state is equal 2 forever).
The files are not ready only and there is no filestream data type used.
Do you know what the problem is?
Thanks a lot.
Eric
May 18, 2010 at 12:54 pm
Hi Eric,
Did you check the percent_complete value from the sys.dm_database_encryption_keys? Also are you trying to set up TDE on the same system where you tested without SP1?
-Roy
May 18, 2010 at 2:14 pm
Hi Roy,
The percent_complete = 0 and never changed. It was working on a different server (VM) without SP1 before. The server was destroyed after the testing.
Now I am working on a new server with SQL server 2008 + SP1 on Windows Server 2008.
Thanks,
Eric
May 18, 2010 at 2:31 pm
Under what user is the service running? This looks more like permission issue. That is probably why encryption_state is 2.
-Roy
May 18, 2010 at 2:41 pm
Under a domain user account. This user has Administrator's rights on the Windows server and is assigned sysadmin role on SQL server.
Thanks,
Eric
May 18, 2010 at 2:52 pm
Is there anything in the SQL error log? Till now no one has reported issues in setting up TDE on SP1 and Windows 2008.
Keep in mind that Windows 2008 OS has this new security feature that it will not allow some file sttirbutes modification if you do not run the application as administrator. What I would like you to try is when you are opening SSMS, right click on the shortcut and choose "Run as administrator"
-Roy
May 18, 2010 at 3:02 pm
Did as what you said but the percent_complete is still shown 0.
I also think it might be a permission issue but no idea what it is.
Thanks a lot,
Eric
June 30, 2010 at 1:44 pm
I have the same problem, the status is 2 but in my case percent complete is 100
October 16, 2010 at 1:22 pm
Really excellent article - nice and clear, easy to understand, and seems to cover all the issues. Thanks Roy.
Tom
October 18, 2010 at 6:41 am
Thanks Tom. I tried to do that and I guess I succeeded.
-Roy
November 16, 2010 at 1:48 pm
Hello, Roy,
The TDE works fine on SQL Server 2008 R2 for me.
Now I am trying to use SQL Audit in SQL Server 2008.
Everything is working but the Audit log date somehow is different from the SQL Sever or Windows System date. For example, the current date is 11/16/2010 3:48 PM but the Audit log date displays as 11/16/2010 8:48 PM.
Do you have any idea?
Thanks a lot for your help in advance.
Eric
November 17, 2010 at 5:02 am
Do you by any chance have any time zone difference? TDE should not have any issues with Auditing. But I have heard that Auditing can have issues with replication.
-Roy
November 17, 2010 at 8:55 am
Thanks Roy.
We are in Eastern Time zone.
I think the time zone is not a problem.
The problem is that the SQL Audit event log time is different from the Server current date.
It is applying to SQL Audit alone. Nothing to do with TDE.
Thanks,
Eric
November 18, 2010 at 6:23 am
Eric Min (11/17/2010)
Thanks Roy.We are in Eastern Time zone.
I think the time zone is not a problem.
The problem is that the SQL Audit event log time is different from the Server current date.
It is applying to SQL Audit alone. Nothing to do with TDE.
Thanks,
Eric
Eastern Time Zone? As in UTC-5? And 3:48 server time is 8:48 SQL Audit Log time according to your earlier post. That looks as if the SQL audit event log time is UTC time while the Server current date is Easter Time.
I used to get awfully bored explaining to people that the default IIS log format used UTC even in India, and even in the summer in the UK. Don't know if SQL Server Audit logging does the same.
Tom
Viewing 15 posts - 61 through 75 (of 81 total)
You must be logged in to reply to this topic. Login to reply